Spear Phishing

Source: US-CERT Cyber Security Bulletin May 4 – May 10, 2005

Phishing Evolves. A new method of phishing called ‘spear phishing’ that evades traditional anti-phishing defenses is being used by Internet scammers. Spear phishing is more specific, because it typically targets a handful of people who are employees of an organization.

In one method, the phisher harvests specific email addresses, either through a phone call or through a company website, and then sends four or five employees a message from a spoofed address purporting to be part of their IT or human resources department. With a spoofed internal address, spear-phishing emails appear to come from within a company and people tend to be more trusting.

Source: http://www.stuff.co.nz/stuff/0,2106,3274129a28,00.html.

R
www.micklerandassociates.com

Name (required)

Mail (will not be published) (required)

Website

Notify me of follow-up comments by email.

Notify me of new posts by email.